Vulnerabilities

CVE-2013-0297

by Fred · 14/03/2014

Multiple cross-site scripting (XSS) vulnerabilities in ownCloud before 4.0.12 and 4.5.x before 4.5.7 allow remote authenticated administrators to inject arbitrary web script or HTML via the (1) site_name or (2) site_url parameter to apps/external/ajax/setsites.php.

Date published : 2014-03-14

http://owncloud.org/about/security/advisories/oC-SA-2013-003/

Similar

Tags: Cybersecurity Alert